REKLAMA

AntiZeroAccess_Log.txt

Analiza logów OTL - jak usunąć wirusa kozanekozasearch?

i ostatni log


Pobierz plik - link do postu

Webroot AntiZeroAccess 0.8 Log File
Execution time: 08/12/2011 - 18:49
Host operation System: Windows Xp X86 version 5.1.2600 Dodatek Service Pack 3
18:50:18 - CheckSystem - Begin to check system...
18:50:18 - OpenRootDrive - Opening system root volume and physical drive....
18:50:18 - C Root Drive: Disk number: 0 Start sector: 0x0000003F Partition Size: 0x0927B5DA sectors.
18:50:18 - PrevX Main driver extracted in " C:\WINDOWS\system32\drivers\ZeroAccess.sys " .
18:50:19 - InstallAndStartDriver - Main driver was installed and now is running.
18:50:19 - CheckSystem - Warning! Disk class driver is INFECTED.
18:50:20 - CheckFile - Warning! File " redbook.sys " is Infected by ZeroAccess Rootkit.
18:51:11 - CheckExecutableEP - Unable to open " C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe " file. CreateFile last error: 3
18:51:24 - DoRepair - Begin to perform system repair....
18:51:24 - DoRepair - System Disk class driver was repaired.
18:51:24 - DoRepair - Infected " redbook.sys " file was renamed.
18:51:24 - DoRepair - Infected " redbook.sys " file was successfully cleaned!
18:51:25 - DoRepair - " desktop.ini " ZeroAccess file NOT found.
18:51:25 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed.
18:51:25 - StopAndRemoveDriver - File " ZeroAccess.sys " was deleted!
18:51:25 - Execution Ended!


Webroot AntiZeroAccess 0.8 Log File
Execution time: 08/12/2011 - 18:53
Host operation System: Windows Xp X86 version 5.1.2600 Dodatek Service Pack 3
Webroot AntiZeroAccess 0.8 Log File
Execution time: 08/12/2011 - 18:54
Host operation System: Windows Xp X86 version 5.1.2600 Dodatek Service Pack 3
18:54:31 - CheckSystem - Begin to check system...
18:54:31 - OpenRootDrive - Opening system root volume and physical drive....
18:54:31 - C Root Drive: Disk number: 0 Start sector: 0x0000003F Partition Size: 0x0927B5DA sectors.
18:54:31 - PrevX Main driver extracted in " C:\WINDOWS\system32\drivers\ZeroAccess.sys " .
18:54:32 - InstallAndStartDriver - Main driver was installed and now is running.
18:54:32 - CheckSystem - Disk class driver state is OK.
18:54:37 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed.
18:54:37 - StopAndRemoveDriver - File " ZeroAccess.sys " was deleted!
18:54:37 - Execution Ended!